$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2477CC70BEC111F0A2F3276AC4F9AE02.roa File: 2477CC70BEC111F0A2F3276AC4F9AE02.roa (raw, json) Hash identifier: ZCGUGY/9BihVa3QGpgQqECwb06dmChO+MA/VeQQu/6Q= Subject key identifier: 89:42:E2:10:F1:B2:54:C7:90:5B:17:40:BE:F7:26:FA:C6:B9:59:AE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DA61 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2477CC70BEC111F0A2F3276AC4F9AE02.roa Signing time: Sun 01 Mar 2026 23:03:47 +0000 ROA not before: Tue 11 Nov 2025 06:21:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133297 IP address blocks: 43.251.80.0/22 maxlen: 22 43.251.80.0/24 maxlen: 24 43.251.81.0/24 maxlen: 24 43.251.82.0/24 maxlen: 24 43.251.83.0/24 maxlen: 24 103.254.128.0/22 maxlen: 22 103.254.128.0/24 maxlen: 24 103.254.129.0/24 maxlen: 24 103.254.130.0/24 maxlen: 24 103.254.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55905 (0xda61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 11 06:21:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c5d2-c432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f1:99:fa:29:f9:92:57:a7:28:2e:e8:de:7e: 64:e4:44:30:dd:0e:19:25:0e:fb:cb:14:77:4d:87: 96:21:30:fa:69:a6:67:81:95:ed:8c:47:1a:da:9b: 38:31:2b:69:bc:6c:77:a5:c0:f3:7d:2f:10:c5:4c: e1:6f:80:82:46:93:2c:a5:a0:01:0a:71:f9:73:bb: ae:e0:33:c2:f6:c8:3f:cb:55:10:00:a8:fb:a2:88: 74:0a:98:e1:b6:e5:e1:32:65:2b:67:af:8b:ab:90: 42:45:44:ce:b8:f3:00:c2:8b:c9:76:92:17:e1:04: 37:ba:37:6d:89:98:bd:11:17:b2:58:6f:a2:b8:ff: 46:a1:f9:90:86:38:75:64:1e:04:bf:42:88:d2:f8: e6:2d:59:ff:60:5c:df:f7:05:e1:11:53:b5:89:6e: bd:da:4d:28:e4:53:76:73:9f:1a:d4:64:a3:c0:c3: e9:1a:8d:20:c3:bc:e7:88:64:5e:59:69:39:59:88: 0c:e8:9d:5e:57:e2:26:ef:16:fe:e3:55:2a:df:0a: d8:cb:b2:43:38:e6:a4:66:30:33:07:24:86:c1:d3: a1:57:a1:f9:91:12:53:44:23:f3:b5:4e:d9:4c:57: 97:b6:d4:74:e1:6c:a6:64:af:46:f9:43:a2:5a:10: 59:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:42:E2:10:F1:B2:54:C7:90:5B:17:40:BE:F7:26:FA:C6:B9:59:AE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2477CC70BEC111F0A2F3276AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.80.0/22 103.254.128.0/22 Signature Algorithm: sha256WithRSAEncryption bb:1b:2c:d2:bc:0d:1a:bf:8a:7b:9f:1b:df:1b:1b:30:48:df: 52:b5:4e:47:43:39:14:f2:3b:90:f2:5f:d8:f9:d0:71:54:26: c1:f4:59:fe:ce:67:ce:62:a9:8d:cb:b1:95:a1:6d:3e:da:af: 94:1d:e7:b1:5b:4c:4a:18:c0:e0:a6:d5:82:8a:e1:9c:6e:8c: c9:62:06:ab:c2:5c:39:a8:e9:88:5e:45:e6:7a:20:68:b9:48: 3d:f3:d0:01:26:a7:03:19:9e:e3:96:ed:d7:6d:f1:3b:c5:08: 4c:fa:a3:fc:f1:3d:6d:47:28:62:07:71:f4:66:8b:2e:32:ab: 8f:58:33:23:71:1d:c1:d4:5c:c0:27:00:f7:37:02:87:72:d7: 64:d6:99:ec:54:2a:fe:71:36:2c:4d:38:2b:20:a5:f7:ed:4d: 42:b0:29:7c:9a:80:41:3b:ca:38:3d:2c:3e:c9:ec:b7:23:d6: 2f:6b:ea:da:fd:59:1c:cb:6b:25:22:fb:ae:7a:6b:da:80:56: 56:5b:e2:6d:79:23:b3:d3:94:0b:aa:58:5d:7b:61:7e:42:79: 8b:78:e8:8b:fb:0f:2e:2d:0e:dc:74:10:03:f5:bb:36:c5:4e: e7:3b:0c:3a:f5:02:de:f2:55:a7:bd:49:05:eb:11:ab:c6:62: 65:da:9c:01 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDANphMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTExMTA2MjE0MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM1ZDItYzQzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLxmfop+ZJXpygu6N5+ZOREMN0OGSUO+8sUd02HliEw+mmmZ4GV7YxHGtqb ODErabxsd6XA830vEMVM4W+AgkaTLKWgAQpx+XO7ruAzwvbIP8tVEACo+6KIdAqY 4bbl4TJlK2evi6uQQkVEzrjzAMKLyXaSF+EEN7o3bYmYvREXslhvorj/RqH5kIY4 dWQeBL9CiNL45i1Z/2Bc3/cF4RFTtYluvdpNKORTdnOfGtRko8DD6RqNIMO854hk XllpOVmIDOidXlfiJu8W/uNVKt8K2MuyQzjmpGYwMwckhsHToVeh+ZESU0Qj87VO 2UxXl7bUdOFspmSvRvlDoloQWRkCAwEAAaOCAmYwggJiMB0GA1UdDgQWBBSJQuIQ 8bJUx5BbF0C+9yb6xrlZrjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI0NzdDQzcw QkVDMTExRjBBMkYzMjc2QUM0RjlBRTAyLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAiv7UAMEAmf+gDANBgkqhkiG9w0BAQsFAAOCAQEAuxss0rwNGr+K e58b3xsbMEjfUrVOR0M5FPI7kPJf2PnQcVQmwfRZ/s5nzmKpjcuxlaFtPtqvlB3n sVtMShjA4KbVgorhnG6MyWIGq8JcOajpiF5F5nogaLlIPfPQASanAxme45bt123x O8UITPqj/PE9bUcoYgdx9GaLLjKrj1gzI3EdwdRcwCcA9zcCh3LXZNaZ7FQq/nE2 LE04KyCl9+1NQrApfJqAQTvKOD0sPsnstyPWL2vq2v1ZHMtrJSL7rnpr2oBWVlvi bXkjs9OUC6pYXXthfkJ5i3joi/sPLi0O3HQQA/W7NsVO5zsMOvUC3vJVp71JBesR q8ZiZdqcAQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:27 2026 by rpki-client